Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204340.roa
File: AS204340.roa (raw, json)
Hash identifier: 92IQ9MkHpmj/wyyUT4ZY+3ePLgP5j526YyG2zPdhMlo=
Subject key identifier: BF:38:B6:65:42:16:B5:40:87:C2:51:33:97:FC:8F:6D:41:88:3F:A3
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 1E164AF9F8FEE1F4A0300E043908DEEEF2293E20
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204340.roa
Signing time: Sun 01 Jan 2023 23:59:19 +0000
ROA not before: Sun 01 Jan 2023 23:54:19 +0000
ROA not after: Sun 31 Dec 2023 23:59:19 +0000
asID: 204340
IP address blocks: 2a06:a005:8b0::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:16:4a:f9:f8:fe:e1:f4:a0:30:0e:04:39:08:de:ee:f2:29:3e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:19 2023 GMT
Not After : Dec 31 23:59:19 2023 GMT
Subject: CN=BF38B6654216B54087C2513397FC8F6D41883FA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:33:c3:be:78:f1:71:b4:07:37:a0:cc:ff:59:
be:a5:c9:cd:9e:26:da:4b:85:3b:52:46:38:74:65:
37:17:8d:cd:b5:83:58:6b:81:96:d7:fe:53:37:ca:
51:11:44:04:83:4f:e2:37:9e:fa:29:3b:ee:72:23:
f6:83:9f:6a:62:12:ab:a2:d5:d1:dd:bd:b8:f3:af:
1a:50:65:6c:45:96:ed:fb:fe:23:69:f7:67:5a:f4:
b8:09:af:e7:d2:ea:92:ab:e3:7c:9c:0a:2e:4d:2b:
e4:12:b0:d8:4a:c3:83:49:3f:d7:36:a4:5b:42:81:
48:d6:9a:d4:73:2a:bb:f9:cf:29:a4:35:2b:12:d3:
c3:6f:a9:ef:60:2c:d1:c0:51:64:51:91:53:32:38:
e2:cc:4d:cc:d6:14:81:e0:4d:40:c8:2f:92:81:f8:
c2:16:bf:5b:da:c8:8b:65:c3:3a:5a:5f:68:a5:32:
e8:38:59:df:3b:f5:2d:67:52:6b:14:92:87:66:91:
e1:e4:83:ab:51:1f:a8:57:f4:5d:96:fd:8c:8f:ad:
1c:e8:18:04:e4:01:0d:df:01:77:fd:09:19:f2:1c:
60:fd:06:04:91:d5:e4:25:dd:5d:d9:55:05:ba:8a:
eb:e2:bc:d7:03:f4:85:ee:aa:57:3e:79:1b:34:90:
61:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:38:B6:65:42:16:B5:40:87:C2:51:33:97:FC:8F:6D:41:88:3F:A3
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS204340.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:8b0::/44
Signature Algorithm: sha256WithRSAEncryption
92:3c:2f:65:16:64:34:37:f2:9f:0c:6f:ea:54:f2:04:fb:63:
7d:ea:bb:f6:8c:7d:e0:51:29:a4:bf:9d:c5:cc:87:f4:89:ba:
d6:f3:50:24:06:35:9c:c0:db:cb:ab:1a:a2:d8:e6:d4:6e:b8:
5b:95:fc:7f:02:2e:62:48:59:f1:eb:ae:23:cd:15:18:71:3b:
19:df:4f:6f:c1:dd:7c:50:71:02:96:2b:40:4c:59:55:d4:e4:
c9:3a:24:3b:fa:31:04:77:59:32:08:1e:80:cd:8d:45:4b:e7:
68:38:27:67:14:22:7e:68:23:bc:12:77:ec:e1:19:88:a2:e3:
54:26:69:fd:8e:7d:f2:78:cc:b9:8c:8b:5b:a9:2a:6f:e5:d3:
d7:fd:75:09:c4:f3:9d:a4:b2:74:7a:b5:f6:3d:aa:e2:32:db:
ac:92:ad:5e:94:7c:d8:13:fd:b8:a0:53:3d:5a:fa:1a:01:fb:
80:2c:85:15:a8:b3:a0:ae:3b:a4:fc:2c:f5:83:a3:61:ed:99:
10:d2:82:3d:79:ea:9a:fd:e1:ad:9d:7c:59:26:f6:29:0b:64:
41:36:01:2f:4d:62:8c:c4:e8:34:51:10:2d:51:e6:72:ff:a9:
51:d0:5a:56:f0:42:19:ed:90:77:0b:dd:ae:a9:90:db:ea:4b:
c1:ce:a2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:21 2024 by rpki-client on console-fra.rpki-client.org